Managed Identity
mathieu-benoit opened this issue · comments
Mathieu Benoit commented
Leveraging Managed Identity with AKS instead of Service Principal is more secure for 2 main reasons:
- There is not anymore the credentials file stored on any AKS nodes (/host/etc/kubernetes/azure.json)
- MI will wrap and managed the credentials (auto-rotate, when expired, etc.) for you
Mathieu Benoit commented
Mathieu Benoit commented
Mathieu Benoit commented
There is an issue currently Azure/azure-cli#12864
Mathieu Benoit commented